filmov
tv
Basic clickjacking with CSRF token protection - APPRENTICE
Показать описание
This lab contains login functionality and a delete account button that is protected by a CSRF token. A user will click on elements that display the word "click" on a decoy website.
To solve the lab, craft some HTML that frames the account page and fools the user into deleting their account. The lab is solved when the account is deleted.
You can log in to your own account using the following credentials: wiener:peter
To solve the lab, craft some HTML that frames the account page and fools the user into deleting their account. The lab is solved when the account is deleted.
You can log in to your own account using the following credentials: wiener:peter
0:04:37
0:04:35
0:00:58
0:01:41
0:03:38
0:03:48
0:13:37
0:14:18
0:03:06
0:06:28
0:03:59
0:07:38
0:11:39
0:13:54
0:14:05
0:10:07
0:08:01
0:09:49
0:02:45
0:08:06
0:00:23
0:04:08
0:46:53